posted on Saturday, May 15, 2004 12:37 PM
by
demiliani
The Worm's worm...
This is really curios...
Accordingly to a news reported today on TheRegister, there's a new worm out called "Dabber" that infects computers by exploiting a security hole in the Sasser worm.
Dabber uses a flaw in the FTP server component of the Sasser worm. The worm will only infect users already infected by Sasser, according to security services firm LURHQ. To remove Dabber LURHQ advises users to kill the package.exe process using the Windows Task Manager. Remove the "sassfix" registry key. Delete package.exe from the Windows system directory and all start-up folders.
I think it's the first time that we see something like this... 